Is there any trusting logic between Identity Providers (Microsoft) and Keycloak

Hi all,

I have configured Microsoft (Azure AD) as Identity Provider and now my Keycloak works as Identity Broker. It works well, but I don’t know if there is any trusting logic between Keycloak and Microsoft on tokens coming from Microsoft. I haven’t found precise information about it.

My question is if anybody knows if there is a trusting logic between Microsoft (Azure AD) and Keycloak?
Thanks in advance.

My configuration details:

  • I went to Identity Provider menu in the Keycloak admin
  • In the “Add providers …” drop down I choosed Microsoft from “Social” section
  • Filled up Client ID and Client Seecret
  • On Microsoft side I registered my Keycloak application and added to the registration the redirect URI

that is all.